Cybersecurity Alerts

GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-78

References

• https://nvd.nist.gov/vuln/detail/CVE-2014-6271